https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434633#M1082314 <P>Hello,</P> <P>&nbsp;</P> <P>I assume 192.168.1.5 is your ConnectWise Automate server ?</P> <P>&nbsp;</P> <P>Try and add the lines below to your access list (it looks like random UDP ports are being used):</P> <P>&nbsp;</P> <P>access-list inside_access_in extended permit udp host 192.168.1.5 host 75.75.75.57 range 50000 60000<BR />access-list inside_access_in extended permit udp host 192.168.1.5 host 75.75.75.57 eq 53<BR />access-list inside_access_in extended permit udp host 192.168.1.5 host 8.8.8.8 eq 53</P> Fri, 16 Jul 2021 20:55:14 GMT Georg Pauwen 2021-07-16T20:55:14Z https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434587#M1082312 <P>Good day,</P><P>&nbsp;</P><P>Please I need your support on the following issue:-</P><P>&nbsp;</P><P>We have an existing ASA 5510, installed our ConnectWise remote management tool but the agent is unable to communicate outside.</P><P>&nbsp;</P><P>We're also inexperienced with Cisco so any help would be appreciated.</P><P>&nbsp;</P><P>I'm leaving attached a log file just in case.</P><P>&nbsp;</P><P>Thanks,</P><P>&nbsp;</P><P>Marlon.</P> Fri, 16 Jul 2021 18:59:56 GMT https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434587#M1082312 mmatheus96 2021-07-16T18:59:56Z https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434626#M1082313 <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/1224928">@mmatheus96</a>&nbsp;</P> <P>What is the source IP address and what protocols does this connectwise application use?</P> <P>I can see in the logs that outbound DNS requests are being blocked, so if connectwise is doing a DNS lookup then that might explain why it is failing.</P> <P>&nbsp;</P> <P>Amend your ACL "inside_access_in" and permit dns (udp 53). E.g.:</P> <P>&nbsp;</P> <PRE>access-list inside_access_in permit udp any any eq 53</PRE> <P>&nbsp; </P> Fri, 16 Jul 2021 20:38:17 GMT https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434626#M1082313 Rob Ingram 2021-07-16T20:38:17Z https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434633#M1082314 <P>Hello,</P> <P>&nbsp;</P> <P>I assume 192.168.1.5 is your ConnectWise Automate server ?</P> <P>&nbsp;</P> <P>Try and add the lines below to your access list (it looks like random UDP ports are being used):</P> <P>&nbsp;</P> <P>access-list inside_access_in extended permit udp host 192.168.1.5 host 75.75.75.57 range 50000 60000<BR />access-list inside_access_in extended permit udp host 192.168.1.5 host 75.75.75.57 eq 53<BR />access-list inside_access_in extended permit udp host 192.168.1.5 host 8.8.8.8 eq 53</P> Fri, 16 Jul 2021 20:55:14 GMT https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434633#M1082314 Georg Pauwen 2021-07-16T20:55:14Z https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434644#M1082318 <P>Hi Rob,</P><P>&nbsp;</P><P>We have tried that and still wouldn't work....</P> Fri, 16 Jul 2021 21:31:13 GMT https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4434644#M1082318 mmatheus96 2021-07-16T21:31:13Z https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4435337#M1082353 <P>Hi Georg,</P><P>&nbsp;</P><P>We've tried your settings and no luck.</P><P>&nbsp;</P><P>However let me give y'all a little bit of background... Our client currently has an ASA5510 installed at their office location, we tried installing our Connectwise Agents in order to remote in from our HQ, had 0 luck so we did some tests and it points back to the Cisco blocking it somehow, the ASA5510 we have at our HQ is a second one we took from them to clone it and resolve the issue.</P><P>&nbsp;</P><P>What we just did was duplicate the settings across the one we have here and add the settings you and Rob gave us.</P><P>&nbsp;</P><P>Let me know if you have any questions.</P><P>&nbsp;</P><P>Thank you!</P> Mon, 19 Jul 2021 13:15:38 GMT https://community.cisco.com/t5/network-security/firewall-access-rules-issue-with-connectwise-automate/m-p/4435337#M1082353 mmatheus96 2021-07-19T13:15:38Z